CN105338574A - Network sharing method based on WIFI (Wireless Fidelity) and device - Google Patents
Network sharing method based on WIFI (Wireless Fidelity) and device Download PDFInfo
- Publication number
- CN105338574A CN105338574A CN201410396517.7A CN201410396517A CN105338574A CN 105338574 A CN105338574 A CN 105338574A CN 201410396517 A CN201410396517 A CN 201410396517A CN 105338574 A CN105338574 A CN 105338574A
- Authority
- CN
- China
- Prior art keywords
- authentication
- message
- gateway device
- key message
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
Abstract
The invention discloses a network sharing method based on WIFI (Wireless Fidelity). The method comprises steps: gateway equipment builds a shared WIFI hotspot, and when a first access message sent by UE (User Equipment) is received, a first redirect message is sent to the UE; when a second access message sent by the UE is received, authentication with an authentication server is carried out according to UE key information in the second access message and key information of the gateway equipment; and when authentication is determined to pass, a connection channel between the UE and WAN is built. The invention also discloses the gateway equipment and the authentication server. By adopting the method and the device of the invention, a mobile user can share cheap bandwidth flow of the fixed network, and experience of the user is enhanced.
Description
Technical field
The present invention relates to the Sharing Technology in Network of internet arena, particularly relate to one and share method and device based on the network of Wireless Fidelity (WIFI, WirelessFidelity).
Background technology
Along with the fast development of smart mobile phone, mobile Internet access, mobile payment have become one way of life pattern indispensable in people's life.But G mobile communication (3G, 3rd-Generation), forth generation mobile communication technology (4G, the4Generationmobilecommunicationtechnology) there is blind spot in the network coverage, and the stability of mobile network's bandwidth and the layout of base station exist contact.The most important thing is, mobile data services rate are general higher, and the mobile bandwidth traffic monthly under set meal restriction is difficult to the needs meeting mobile subscriber; And meanwhile, fixed network broadband user is also in a large amount of development, and the set meal of a large amount of monthly payment not limit flow rises one after another.
Therefore, provide a kind of safety, reliably, method easily, the bandwidth traffic of fixed network broadband user is shared to mobile subscriber, solves above-mentioned contradiction, become problem demanding prompt solution.
Summary of the invention
In view of this, the embodiment of the present invention is expected to provide a kind of network based on WIFI to share method and device, and mobile subscriber can be allowed to enjoy the cheap bandwidth traffic of fixed network, strengthens the experience sense of user.
For achieving the above object, technical scheme of the present invention is achieved in that
Embodiments provide a kind of network based on Wireless Fidelity WIFI and share method, gateway device is set up and is shared WIFI hot spot; Described method also comprises:
When gateway device receives the first access message of user equipment (UE) transmission, send the first redirection message to UE; Described first redirection message is used for the reference address of described UE to be redirected to certificate server;
When receiving the second access message that UE sends, carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Determine authentication by time, set up the interface channel between described UE and wide area network WAN.
In such scheme, described in receive the second access message that UE sends before, described method also comprises: described UE by the legitimacy certification of certificate server, and receives the second redirection message that certificate server sends.
In such scheme, describedly carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server and comprise:
Carry out point-to-point protocol (PPP, PointtoPointProtocol) according to the UE key message in described second access message and the key message of gateway device and certificate server to dial authentication;
Or, carry out remote customer dialing authentication system (RADIUS, RemoteAuthenticationDialInUserService) authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or, carry out 802.1X authentication according to the UE key message in described second access message and gateway device key message and certificate server.
In such scheme, the described interface channel set up between described UE and WAN comprises:
On UE, creating authentication OK welcome page by sending HTML (Hypertext Markup Language) (HTTP, Hypertexttransferprotocol) message, setting up the interface channel between described UE and WAN.
In such scheme, described method also comprises: arrange the access rights of UE and the dynamic maximum access bandwidth of UE.
The embodiment of the present invention additionally provides a kind of gateway device, and described gateway device comprises: creation module, receiver module, the first sending module and the first authentication module; Wherein,
Described creation module, for setting up shared WIFI hot spot; And authentication by time, set up the interface channel between described UE and WAN;
Described receiver module, for when receiving the first access message that UE sends, triggers the first sending module; And when receiving the second access message that UE sends, trigger the first authentication module;
Described first sending module, for sending the first redirection message to UE; Described first redirection message is used for the reference address of described UE to be redirected to certificate server;
Described first authentication module, for carrying out authentication according to key message and the certificate server of the UE key message in described second access message and gateway device, authentication by time, triggering creation module.
In such scheme, described first authentication module is carried out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server and is comprised:
Described first authentication module is carried out PPP according to the UE key message in described second access message and the key message of gateway device and certificate server and to be dialled authentication;
Or, carry out RADIUS authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or, carry out 802.1X authentication according to the UE key message in described second access message and the key message of gateway device and certificate server.
In such scheme, the interface channel that described creation module is set up between described UE and WAN comprises:
Described creation module creates authentication OK welcome page by sending HTTP message on UE, sets up the interface channel between described UE and WAN.
In such scheme, described gateway device also comprises: arrange module, for the dynamic maximum access bandwidth of the access rights and UE that arrange UE.
The embodiment of the present invention additionally provides a kind of network based on WIFI and shares method, and described method comprises:
Certificate server carries out legitimacy certification to UE, and when certification is passed through, sends the second redirection message to UE; Described second redirection message is used for the reference address of described UE to be redirected to gateway device;
Authentication is carried out to the gateway device obtaining UE key message, determine authentication by time send authentication OK message to gateway device;
Described authentication OK message, sets up interface channel between described UE and WAN for triggering gateway device.
In such scheme, before described certificate server carries out legitimacy certification to UE, described method also comprises: described UE sends the first access message to gateway device, and receives the first redirection message of gateway device transmission.
In such scheme, before the described gateway device to obtaining UE key message carries out authentication, described method also comprises: gateway device receives the second access message that UE sends, and extracts the UE key message in described second access message.
In such scheme, authentication is carried out to the gateway device obtaining UE key message and comprises:
PPP dialing authentication is carried out to the gateway device obtaining UE key message;
Or, RADIUS authentication is carried out to the gateway device obtaining UE key message;
Or, 802.1X authentication is carried out to the gateway device obtaining UE key message.
The embodiment of the present invention additionally provides a kind of certificate server, and described certificate server comprises: authentication module, the second sending module and the second authentication module; Wherein,
Described authentication module, for carrying out legitimacy certification to UE, and when certification is passed through, triggers the second sending module;
Described second sending module, for sending the second redirection message to UE, and when authentication is passed through, sends authentication OK message to gateway device; Described second redirection message is used for the reference address of described UE to be redirected to gateway device;
Described second authentication module, for carrying out authentication to the gateway device obtaining UE key message, and determine authentication by time, trigger the second sending module;
Described authentication OK message, sets up interface channel between described UE and WAN for triggering gateway device.
In such scheme, described second authentication module is carried out authentication to the gateway device obtaining UE key message and is comprised:
Described second authentication module carries out PPP dialing authentication to the gateway device obtaining UE key message;
Or the second authentication module carries out RADIUS authentication to the gateway device obtaining UE key message;
Or the second authentication module carries out 802.1X authentication to the gateway device obtaining UE key message.
The network based on WIFI that the embodiment of the present invention provides shares method and device, and gateway device is set up and shared WIFI hot spot; When receiving the first access message that subscriber equipment (UE, UserEquipment) sends, send the first redirection message to UE; When receiving the second access message that UE sends, carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server; Determine authentication by time, set up the interface channel between described UE and wide area network (WAN, WideAreaNetwork).So, mobile subscriber can be allowed to enjoy the cheap bandwidth traffic of fixed network, give the selection that mobile subscriber is more, cost performance is higher, strengthen the experience sense of user, and reliability be high, fail safe is good.
Accompanying drawing explanation
Fig. 1 is that the embodiment of the present invention one shares method flow schematic diagram based on the network of WIFI;
Fig. 2 is that the embodiment of the present invention two shares method flow schematic diagram based on the network of WIFI;
Fig. 3 is that the embodiment of the present invention shares topological diagram based on the network of WIFI;
Fig. 4 is that the embodiment of the present invention three shares method flow schematic diagram based on the network of WIFI;
Fig. 5 is the composition structural representation of embodiment of the present invention gateway device;
Fig. 6 is the composition structural representation of embodiment of the present invention certificate server.
Embodiment
In embodiments of the present invention, gateway device is set up and is shared WIFI hot spot; When receiving the first access message of UE transmission, send the first redirection message to UE; When receiving the second access message that UE sends, carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server; Determine authentication by time, set up the interface channel between described UE and WAN.
Wherein, described first redirection message is used for the reference address of described UE being redirected to certificate server, to carry out legitimacy certification;
Described UE key message is the unique identification information of described UE;
The key message of described gateway device is the unique identification information of described gateway device.
Fig. 1 is that the embodiment of the present invention one shares method flow schematic diagram based on the network of WIFI, and as shown in Figure 1, the present embodiment is shared method based on the network of WIFI and comprised:
Step 101: when gateway device receives the first access message of UE transmission, send the first redirection message to UE;
Before this step, described method also comprises: gateway device is set up and shared WIFI hot spot;
Here, described first access message is common upper network packet;
Described first redirection message is used for the reference address of described UE to be redirected to certificate server.
Step 102: when receiving the second access message that UE sends, carries out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Before this step, described method also comprises: described UE by the legitimacy certification of certificate server, and receives the second redirection message of certificate server transmission;
Wherein, described legitimacy certification is the certification that certificate server utilizes username and password and carries out UE;
Described second redirection message comprises UE key message, and for the reference address of described UE is redirected to gateway device.
Here, described UE key message is the unique identification information of described UE, as: as described in mobile device international identity code (IMEI, InternationalMobileEquipmentIdentity) of UE;
The key message of described gateway device is the unique identification information of described gateway device, as: the unique tag serial number of gateway device;
Describedly carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server and comprise:
Carry out PPP according to the UE key message in described second access message and the key message of gateway device and certificate server to dial authentication;
Or, carry out RADIUS authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or, carry out 802.1X authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Wherein, carry out the PPP authentication that dials according to the UE key message in described second access message and certificate server specifically to comprise: the key message of accessing UE key message in message and gateway device according to described second carries out PPP dialing, carries out authentication by the username and password of PPP.
In the present embodiment, gateway device carries out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server, so, establish the dynamic binding relationship of gateway device and described UE, described UE is about to use fixed network broadband resource, to carry out expense calculating to make certificate server confirm.
Step 103: determine authentication by time, set up the interface channel between described UE and WAN;
This step specifically comprises: determine authentication by time, by send HTTP message on UE, create authentication OK welcome page, set up the interface channel between described UE and WAN.
Further, described method also comprises: arrange the access rights of UE and the dynamic maximum access bandwidth of UE;
Wherein, the access rights arranging UE specifically comprise: arrange the private network that UE cannot access domestic consumer, and arrange the shared WIFI network of the described UE of UE described in domestic consumer's inaccessible; So, ensure that the isolation of the Internet resources that domestic consumer and mobile subscriber use, be convenient to the calculating of expense;
The dynamic maximum access bandwidth arranging UE specifically comprises: arrange when domestic consumer does not use Internet resources, and described UE can use idle maximum bandwidth; When domestic consumer is when using Internet resources, described UE uses remaining bandwidth only.
Fig. 2 is that the embodiment of the present invention two shares method flow schematic diagram based on the network of WIFI, and as shown in Figure 2, the present embodiment is shared method based on the network of WIFI and comprised:
Step 201: certificate server carries out legitimacy certification to UE, and when certification is passed through, send the second redirection message to UE;
Before this step, described method also comprises: described UE sends the first access message to gateway device, and receives the first redirection message of gateway device transmission;
Wherein, described first access message is common upper network packet;
Described first redirection message is used for the reference address of described UE to be redirected to certificate server.
Described legitimacy certification is the certification that certificate server utilizes username and password and carries out UE;
Described second redirection message comprises UE key message, and for the reference address of described UE is redirected to gateway device;
Wherein, described UE key message is the unique identification information of described UE, as described in the IMEI of UE, i.e. sequence number information.
Step 202: authentication is carried out to the gateway device obtaining UE key message, determine authentication by time, send authentication OK message to gateway device;
Before this step, described method also comprises: gateway device receives the second access message that UE sends, and extracts the UE key message in described second access message.
The described gateway device to obtaining UE key message carries out authentication and comprises:
PPP dialing authentication is carried out to the gateway device obtaining UE key message;
Or, RADIUS authentication is carried out to the gateway device obtaining UE key message;
Or, 802.1X authentication is carried out to the gateway device obtaining UE key message;
Wherein, carry out PPP dialing authentication to the gateway device obtaining UE key message specifically to comprise: utilize the username and password of PPP to carry out authentication to the gateway device obtaining UE key message;
In the present embodiment, certificate server carries out authentication to the gateway device obtaining UE key message, namely with UE, certification is associated to gateway device, set up the dynamic binding relationship of gateway device and described UE, described UE is about to use fixed network broadband resource, to carry out expense calculating to make certificate server confirm.
Described authentication OK message, sets up the interface channel between described UE and WAN when receiving for gateway device; During specifically for being subject to described authentication OK message when gateway device, sending HTTP message on UE, create authentication OK welcome page, set up the interface channel between described UE and WAN.
Fig. 3 is that the embodiment of the present invention shares topological diagram based on the network of WIFI; Fig. 4 is that the embodiment of the present invention three shares method flow schematic diagram based on the network of WIFI, and in the present embodiment, gateway device has set up shared WIFI hot spot, and as shown in Figure 3, Figure 4, the present embodiment is shared method based on the network of WIFI and comprised:
Step 401:UE sends the first access message to gateway device;
Here, described first access message is common upper network packet.
Step 402:UE receives the first redirection message that gateway device sends;
Here, described first redirection message is used for the reference address of described UE to be redirected to certificate server.
Step 403: certificate server carries out legitimacy certification to UE, and judge whether certification is passed through, if passed through, perform step 404; If certification is not passed through, terminate this handling process;
Here, described legitimacy certification is the certification that certificate server utilizes username and password and carries out UE.
Step 404: certificate server sends the second redirection message to UE;
Here, described second redirection message comprises UE key message, and for the reference address of described UE is redirected to gateway device;
Wherein, described UE key message is the unique identification information of described UE, as described in the IMEI of UE, i.e. sequence number.
Step 405: gateway device receives the second access message that UE sends, and extract the UE key message in described second access message.
Step 406: gateway device carries out authentication according to described UE key message and gateway device key message and certificate server, and judges whether authentication is passed through, if passed through, performs step 407; If do not passed through, terminate this handling process;
Here, described gateway device key message is the unique identification information of described gateway device, as the unique tag serial number of gateway device;
This step specifically comprises: carry out PPP according to the key message of described UE key message and gateway device and certificate server and to dial authentication;
Or, carry out RADIUS authentication according to the key message of described UE key message and gateway device and certificate server;
Or, carry out 802.1X authentication according to the key message of described UE key message and gateway device and certificate server;
Wherein, carry out the PPP authentication that dials according to the key message of described UE key message and gateway device and certificate server specifically to comprise: the key message according to described UE key message and gateway device carries out PPP dialing, carries out authentication by the username and password of PPP.
In the present embodiment, gateway device carries out authentication according to described UE key message and gateway device key message and certificate server, so, establishes the dynamic binding relationship of gateway device and described UE, described UE is about to use fixed network broadband resource, to carry out expense calculating to make certificate server confirm.
Step 407: gateway device sets up the interface channel between described UE and WAN;
This step specifically comprises: on UE, creating authentication OK welcome page by sending HTTP message, setting up the interface channel between described UE and WAN.
Can also comprise after this step: gateway device arranges the access rights of UE and the dynamic maximum access bandwidth of UE;
Here, the access rights arranging UE specifically comprise: arrange the private network that UE cannot access domestic consumer, and arrange the shared WIFI network of the described UE of UE described in domestic consumer's inaccessible; So, ensure that the isolation of the Internet resources that domestic consumer and mobile subscriber use, be convenient to the calculating of expense;
The dynamic maximum access bandwidth arranging UE specifically comprises: arrange when domestic consumer does not use Internet resources, and described UE can use idle maximum bandwidth; When domestic consumer is when using Internet resources, described UE uses remaining bandwidth only.
Fig. 5 is the composition structural representation of embodiment of the present invention gateway device; As shown in Figure 5, the composition of embodiment of the present invention gateway device comprises: creation module 51, receiver module 52, first sending module 53, first authentication module 54; Wherein,
Described creation module 51, for setting up shared WIFI hot spot; And authentication by time, set up the interface channel between described UE and WAN;
Described receiver module 52, for when receiving the first access message that UE sends, triggers the first sending module 53; And when receiving the second access message that UE sends, trigger the first authentication module 54;
Described first sending module 53, for sending the first redirection message to UE;
Described first authentication module 54, for carrying out authentication according to key message and the certificate server of the UE key message in described second access message and gateway device, authentication by time, triggering creation module 51;
Here, described first access message is common upper network packet;
Described first redirection message is used for the reference address of described UE to be redirected to certificate server;
Described UE key message is the unique identification information of described UE, as described in the IMEI of UE;
Described gateway device key message is the unique identification information of described gateway device, as the unique tag serial number of gateway device.
Further, described first authentication module 54 is carried out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server and is comprised:
Described first authentication module 54 is carried out PPP according to the UE key message in described second access message and the key message of gateway device and certificate server and to be dialled authentication;
Or described first authentication module 54 carries out RADIUS authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or described first authentication module 54 carries out 802.1X authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Wherein, described first authentication module 54 is carried out the PPP authentication that dials according to the UE key message in described second access message and the key message of gateway device and certificate server and is specifically comprised: described first authentication module 54 carries out PPP dialing according to the key message that described second accesses UE key message in message and gateway device, carries out authentication by the username and password of PPP;
In the present embodiment, described first authentication module 54 carries out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server, so, establish the dynamic binding relationship of gateway device and described UE, described UE is about to use fixed network broadband resource, to carry out expense calculating to make certificate server confirm.
Further, the interface channel that described creation module 51 is set up between described UE and WAN comprises:
Described creation module 51 creates authentication OK welcome page by sending HTTP message on UE, sets up the interface channel between described UE and WAN.
Further, described gateway device also comprises: arrange module 55, for the dynamic maximum access bandwidth of the access rights and UE that arrange UE;
Wherein, arrange the access rights that module 55 arranges UE specifically to comprise: arrange module 55 and arrange the private network that UE cannot access domestic consumer, and arrange the shared WIFI network of the described UE of UE described in domestic consumer's inaccessible; So, ensure that the isolation of the Internet resources that domestic consumer and mobile subscriber use, be convenient to the calculating of expense;
Arrange the dynamic maximum access bandwidth that module 55 arranges UE specifically to comprise: arrange module 55 and arrange when domestic consumer does not use Internet resources, described UE can use the maximum bandwidth of free time; When domestic consumer is when using Internet resources, described UE uses remaining bandwidth only.
Fig. 6 is the composition structural representation of embodiment of the present invention certificate server, and as shown in Figure 6, the composition of embodiment of the present invention certificate server comprises: authentication module 61, second sending module 62 and the second authentication module 63; Wherein,
Described authentication module 61, for carrying out legitimacy certification to UE, and when certification is passed through, triggers the second sending module 62;
Described second sending module 62, for sending the second redirection message to UE, and determine authentication by time send authentication OK message to gateway device;
Described second authentication module 63, for carrying out authentication to the gateway device obtaining UE key message, and determine authentication by time, trigger sending module 62;
Here, described legitimacy certification is the certification utilizing username and password to carry out UE;
Described second redirection message comprises UE key message, for the reference address of described UE is redirected to gateway device;
Described UE key message is the unique identification information of described UE, as described in the IMEI of UE.
Further, described second authentication module 63 is carried out authentication to the gateway device obtaining UE key message and is comprised:
Described second authentication module 63 carries out PPP dialing authentication to the gateway device obtaining UE key message;
Or described second authentication module 63 carries out RADIUS authentication to the gateway device obtaining UE key message;
Or described second authentication module 63 carries out 802.1X authentication to the gateway device obtaining UE key message;
Wherein, described second authentication module 63 to the gateway device obtaining UE key message carry out PPP dial authentication specifically comprise: described second authentication module 63 utilizes the username and password of PPP to carry out authentication to the gateway device obtaining UE key message;
Described second authentication module 63 carries out authentication to the gateway device obtaining UE key message, namely carried out associating certification with UE to gateway device, establish the dynamic binding relationship of gateway device and described UE, described UE is about to use fixed network broadband resource, to carry out expense calculating to make certificate server confirm.
Above described creation module 51, receiver module 52, first sending module 53, first authentication module 54, module 55 is set, all can by the central processing unit (CPU in gateway device, or digital signal processor (DSP CentralProcessingUnit), DigitalSignalProcessor) or field programmable gate array (FPGA, FieldProgrammableGateArray) realize; Described authentication module 61, second sending module 62 and the second authentication module 63 all can be realized by CPU or DSP in certificate server or FPGA.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.
Claims (15)
1. the network based on Wireless Fidelity WIFI shares a method, and gateway device is set up and shared WIFI hot spot; It is characterized in that, described method also comprises:
When gateway device receives the first access message of user equipment (UE) transmission, send the first redirection message to UE; Described first redirection message is used for the reference address of described UE to be redirected to certificate server;
When receiving the second access message that UE sends, carry out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Determine authentication by time, set up the interface channel between described UE and wide area network WAN.
2. method according to claim 1, is characterized in that, described in receive the second access message that UE sends before, described method also comprises: described UE by the legitimacy certification of certificate server, and receives the second redirection message that certificate server sends.
3. method according to claim 1 or 2, is characterized in that, describedly carries out authentication according to the UE key message in described second access message and the key message of gateway device and certificate server and comprises:
Carry out point-to-point protocol PPP according to the UE key message in described second access message and the key message of gateway device and certificate server to dial authentication;
Or, carry out remote customer dialing authentication system RADIUS authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or, carry out 802.1X authentication according to the UE key message in described second access message and gateway device key message and certificate server.
4. method according to claim 1 or 2, is characterized in that, the described interface channel set up between described UE and WAN comprises:
On UE, creating authentication OK welcome page by sending HTML (Hypertext Markup Language) HTTP message, setting up the interface channel between described UE and WAN.
5. method according to claim 1 or 2, is characterized in that, described method also comprises: arrange the access rights of UE and the dynamic maximum access bandwidth of UE.
6. a gateway device, is characterized in that, described gateway device comprises: creation module, receiver module, the first sending module and the first authentication module; Wherein,
Described creation module, for setting up shared WIFI hot spot; And authentication by time, set up the interface channel between described UE and WAN;
Described receiver module, for when receiving the first access message that UE sends, triggers the first sending module; And when receiving the second access message that UE sends, trigger the first authentication module;
Described first sending module, for sending the first redirection message to UE; Described first redirection message is used for the reference address of described UE to be redirected to certificate server;
Described first authentication module, for carrying out authentication according to key message and the certificate server of the UE key message in described second access message and gateway device, authentication by time, triggering creation module.
7. gateway device according to claim 6, is characterized in that, described first authentication module is carried out authentication according to the key message of the UE key message in described second access message and gateway device and certificate server and comprised:
Described first authentication module is carried out PPP according to the UE key message in described second access message and the key message of gateway device and certificate server and to be dialled authentication;
Or, carry out RADIUS authentication according to the UE key message in described second access message and the key message of gateway device and certificate server;
Or, carry out 802.1X authentication according to the UE key message in described second access message and the key message of gateway device and certificate server.
8. gateway device according to claim 6 or 7, is characterized in that, the interface channel that described creation module is set up between described UE and WAN comprises:
Described creation module creates authentication OK welcome page by sending HTTP message on UE, sets up the interface channel between described UE and WAN.
9. gateway device according to claim 6 or 7, is characterized in that, described gateway device also comprises: arrange module, for the dynamic maximum access bandwidth of the access rights and UE that arrange UE.
10. the network based on WIFI shares a method, it is characterized in that, described method comprises:
Certificate server carries out legitimacy certification to UE, and when certification is passed through, sends the second redirection message to UE; Described second redirection message is used for the reference address of described UE to be redirected to gateway device;
Authentication is carried out to the gateway device obtaining UE key message, determine authentication by time send authentication OK message to gateway device;
Described authentication OK message, sets up interface channel between described UE and WAN for triggering gateway device.
11. methods according to claim 10, it is characterized in that, before described certificate server carries out legitimacy certification to UE, described method also comprises: described UE sends the first access message to gateway device, and receives the first redirection message that gateway device sends.
12. according to claim 10 or 11 method, it is characterized in that, before the described gateway device to obtaining UE key message carries out authentication, described method also comprises: gateway device receives the second access message that UE sends, and extracts the UE key message in described second access message.
13. according to claim 10 or 11 method, it is characterized in that, authentication is carried out to the gateway device obtaining UE key message and comprises:
PPP dialing authentication is carried out to the gateway device obtaining UE key message;
Or, RADIUS authentication is carried out to the gateway device obtaining UE key message;
Or, 802.1X authentication is carried out to the gateway device obtaining UE key message.
14. 1 kinds of certificate servers, is characterized in that, described certificate server comprises: authentication module, the second sending module and the second authentication module; Wherein,
Described authentication module, for carrying out legitimacy certification to UE, and when certification is passed through, triggers the second sending module;
Described second sending module, for sending the second redirection message to UE, and when authentication is passed through, sends authentication OK message to gateway device; Described second redirection message is used for the reference address of described UE to be redirected to gateway device;
Described second authentication module, for carrying out authentication to the gateway device obtaining UE key message, and determine authentication by time, trigger the second sending module;
Described authentication OK message, sets up interface channel between described UE and WAN for triggering gateway device.
15., according to certificate server described in claim 14, is characterized in that, described second authentication module is carried out authentication to the gateway device obtaining UE key message and comprised:
Described second authentication module carries out PPP dialing authentication to the gateway device obtaining UE key message;
Or, RADIUS authentication is carried out to the gateway device obtaining UE key message;
Or, 802.1X authentication is carried out to the gateway device obtaining UE key message.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410396517.7A CN105338574A (en) | 2014-08-12 | 2014-08-12 | Network sharing method based on WIFI (Wireless Fidelity) and device |
| PCT/CN2015/076873 WO2016023385A1 (en) | 2014-08-12 | 2015-04-17 | Wifi-based network sharing method, device and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410396517.7A CN105338574A (en) | 2014-08-12 | 2014-08-12 | Network sharing method based on WIFI (Wireless Fidelity) and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105338574A true CN105338574A (en) | 2016-02-17 |
Family
ID=55288767
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410396517.7A Withdrawn CN105338574A (en) | 2014-08-12 | 2014-08-12 | Network sharing method based on WIFI (Wireless Fidelity) and device |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN105338574A (en) |
| WO (1) | WO2016023385A1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110995516A (en) * | 2019-12-30 | 2020-04-10 | 国网北京市电力公司 | Method and device for constructing data transmission network, storage medium and processor |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1759558A (en) * | 2003-03-10 | 2006-04-12 | 汤姆森特许公司 | An identity mapping mechanism in wlan access control with public authentication servers |
| US20130268666A1 (en) * | 2012-04-04 | 2013-10-10 | David Wilson | Captive portal redirection using display layout information |
| CN103701760A (en) * | 2012-09-28 | 2014-04-02 | 中国电信股份有限公司 | Wireless LAN (Local Area Network) Portal authentication method and system and Portal server |
-
2014
- 2014-08-12 CN CN201410396517.7A patent/CN105338574A/en not_active Withdrawn
-
2015
- 2015-04-17 WO PCT/CN2015/076873 patent/WO2016023385A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1759558A (en) * | 2003-03-10 | 2006-04-12 | 汤姆森特许公司 | An identity mapping mechanism in wlan access control with public authentication servers |
| US20130268666A1 (en) * | 2012-04-04 | 2013-10-10 | David Wilson | Captive portal redirection using display layout information |
| CN103701760A (en) * | 2012-09-28 | 2014-04-02 | 中国电信股份有限公司 | Wireless LAN (Local Area Network) Portal authentication method and system and Portal server |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110995516A (en) * | 2019-12-30 | 2020-04-10 | 国网北京市电力公司 | Method and device for constructing data transmission network, storage medium and processor |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2016023385A1 (en) | 2016-02-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP5523632B2 (en) | WiFi communication implementation method, user equipment, and wireless router | |
| CN110798833B (en) | Method and device for verifying user equipment identification in authentication process | |
| KR102504960B1 (en) | Method and apparatus for providing operator-specific service | |
| CN107529160B (en) | VoWiFi network access method and system, terminal and wireless access point equipment | |
| CN105027529B (en) | Method and apparatus for verifying user's access to Internet resources | |
| EP3433994B1 (en) | Methods and apparatus for sim-based authentication of non-sim devices | |
| CN104836787A (en) | System and method for authenticating client station | |
| CN102984646B (en) | A kind of supplying method of cell-phone customer terminal location service and system | |
| CN104917775A (en) | Internet access method | |
| WO2016161832A1 (en) | System and corresponding method for realizing mobile communication via sim card management | |
| CN105491093A (en) | Terminal authentication method, network access methods, server, wireless access point and terminal | |
| WO2012174722A1 (en) | Method and apparatus for providing a virtual sim for mobile communications | |
| CN104660405A (en) | Business equipment authentication method and equipment | |
| WO2016131289A1 (en) | Method, device and user equipment for testing security of wireless hotspot | |
| US9094817B2 (en) | Mobile device location authentication | |
| CN103607706A (en) | NFC-technology based conversation method, NFC terminal and far-end server | |
| EP3025534B1 (en) | Providing telephony services over wifi for non-cellular devices | |
| CN116723507B (en) | Terminal security method and device for edge network | |
| TWI592001B (en) | System and method for providing telephony services over wifi for non-cellular devices | |
| CN111770094B (en) | Access control method of wireless network and related device | |
| EP3105900B1 (en) | Method and system for determining that a sim and a sip client are co-located in the same mobile equipment | |
| CN113709736A (en) | Network authentication method, device and system | |
| CN105338574A (en) | Network sharing method based on WIFI (Wireless Fidelity) and device | |
| CN103945379A (en) | Method of realizing access authentication and data communication in access network | |
| KR101434750B1 (en) | Geography-based pre-authentication for wlan data offloading in umts-wlan networks |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WW01 | Invention patent application withdrawn after publication |
Application publication date: 20160217 |
|
| WW01 | Invention patent application withdrawn after publication |